Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json)
Hash identifier: M6IP/ZOsms6sx/sjxizeMGDdEZozTnU/UKG9Kt6Na6k=
Subject key identifier: 6C:00:50:74:66:8D:59:D3:11:44:91:15:D3:AF:56:57:F2:56:41:6F
Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Certificate serial: 0197B70EF23B58304A9E764FFB0B99BD2546
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 15:01:39 +0000
Manifest this update: Sat 28 Jun 2025 15:01:39 +0000
Manifest next update: Sun 29 Jun 2025 15:01:39 +0000
Files and hashes: 1: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: xSM5yBTPLHV01fjyPpKcrJpblz5eNsa/sv0dzhE6WuE=)
2: srWs4lSgEcXww8bmZ8Qduqdxgdw.roa (hash: Fa3vdYsDt8LbAe4PXMPi2JDBOubqWHhdVQas9y66mmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:f2:3b:58:30:4a:9e:76:4f:fb:0b:99:bd:25:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Validity
Not Before: Jun 28 15:01:39 2025 GMT
Not After : Jun 29 15:01:39 2025 GMT
Subject: CN=6c005074668d59d311449115d3af5657f256416f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:36:e7:02:1a:d7:c3:7b:ee:b4:83:50:58:cd:
16:ae:c3:d2:3f:c2:86:f8:95:d5:d5:4c:db:8a:5d:
73:23:c8:12:86:4c:24:73:20:ad:87:5b:e0:4d:67:
5b:64:54:d7:7c:ee:d3:5a:31:27:e3:cb:fa:c5:3a:
a1:85:46:93:fe:66:f6:49:03:46:f7:da:74:2f:d2:
3b:2b:e5:b4:d0:b9:06:cc:d6:20:b0:2e:d2:86:fa:
0d:41:01:8f:e7:dd:44:84:9f:8c:12:bd:45:39:b9:
c1:b7:f5:4d:a6:f3:57:52:8a:47:c0:21:62:0d:a8:
6f:14:72:d2:9b:10:21:21:b0:60:9a:88:ea:c8:ec:
6a:e4:ec:94:47:6a:f6:1c:27:d4:91:14:40:f1:ba:
13:9b:79:5c:8d:96:72:90:dc:9c:1e:3f:4a:aa:af:
ed:c3:57:5f:fc:71:b7:6b:a4:a9:58:59:97:67:4f:
c2:de:3a:10:36:6a:9c:aa:bf:76:23:4b:cc:90:c7:
13:80:32:eb:58:d8:55:cd:d9:bc:54:40:28:7c:3f:
0e:8e:5c:83:61:d2:5f:70:a5:37:47:7d:f0:5f:85:
bf:86:e0:95:9b:b2:ff:52:02:f3:96:b7:cc:41:be:
b8:5b:ef:e1:02:f0:9d:65:d9:8b:c5:01:e2:8c:38:
b2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:00:50:74:66:8D:59:D3:11:44:91:15:D3:AF:56:57:F2:56:41:6F
X509v3 Authority Key Identifier:
keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:42:90:37:93:b5:48:cc:e7:02:81:b3:78:b0:2d:60:b1:2e:
a8:50:f4:5d:9f:bd:7c:fa:4d:06:79:57:fe:4d:db:af:49:dd:
a1:d2:16:1a:2e:03:0f:f9:5f:a4:75:b8:a8:06:10:a6:b4:22:
39:9a:77:0b:7e:fc:8b:84:13:7a:cb:f3:af:d2:c8:6c:41:6e:
49:1c:1c:78:cb:45:00:83:64:83:f9:a4:35:81:46:15:0b:57:
e5:a0:33:d4:39:4c:2d:e9:bc:3e:b6:b8:b4:cd:f9:cb:46:2b:
b4:41:45:f4:ba:a0:3d:44:8a:a5:18:67:02:52:fb:96:7b:c9:
74:ac:f4:0f:30:10:ae:24:08:4d:7c:84:94:5c:23:07:c3:42:
8d:f3:e3:8a:02:a9:34:b2:d3:e1:b8:60:b5:61:5e:76:22:15:
c3:f7:85:75:82:e6:6a:8a:b9:60:4f:45:ec:8b:32:26:66:ba:
de:bc:6d:5b:98:71:20:6e:c3:aa:dd:ac:b7:48:77:47:2a:d7:
a3:16:0b:da:d2:23:df:4a:6e:f2:a8:44:26:7d:b0:6f:28:d6:
14:7d:b6:93:39:2f:c4:fc:95:a7:d4:49:ab:7d:5d:59:e4:18:
3f:88:f8:e1:11:e3:59:ba:be:e8:49:92:2d:dd:2a:de:10:08:
e1:c9:47:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:12:50 2025 by rpki-client